John Gruber links to and comments on David Barnard’s article on Gaming the App Store: “…it continues to surprise me that Apple hasn’t cracked down on all of these scams, especially the ones that trick people into paying for subscriptions […] The apps that sell your location data to third parties are a head-scratcher too…”

Bleeping Computer: iPhone X, Galaxy S9, Xiaomi Mi6 Fall at Pwn2Own Tokyo – “iPhone X, Samsung Galaxy S9, and Xiaomi Mi6 all fell at the hands of hackers that found bugs in various components and crafted exploits that allowed complete take over of the targeted device.”

Cyberscoop: Apple’s new security chip kills access to microphone – “In a security pamphlet released after Apple’s press event on Tuesday, the company revealed that the chip will completely cut off access to the device’s microphone when the MacBook lid is shut.”

Brian Krebs: Busting SIM Swappers and SIM Swap Myths – “KrebsOnSecurity recently had a chance to interview members of the REACT Task Force, a team of law enforcement officers and prosecutors based in Santa Clara, Calif. that has been tracking down individuals engaged in unauthorized “SIM swaps” — a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims.”

I’ve often taken issue with Cylance (and other so-called next-generation vendors) over its misleading claims about mainstream detection techniques. However, the company has published some discussion among its own researchers regarding Bloomberg’s claims about supply-chain security issues relating to Apple and other big US companies, and several good points are made therein. Worth reading.